Merge pull request #15 from GeorgeDavis-Ibexlabs/dev

docs: Update versions of the new release
GeorgeDavis-Ibexlabs · Aug 23, 2024 · ce18b6b · ce18b6b
2 parents 0325f62 + a1d51a0
commit ce18b6b
Show file tree

Hide file tree

Showing 3 changed files with 33 additions and 2 deletions.
diff --git a/.github/workflows/build-ci.yml b/.github/workflows/build-ci.yml
@@ -16,6 +16,7 @@ on:
 permissions:
   id-token: write # This is required for requesting the JWT
   contents: read # This is required for actions/checkout
+  pull-requests: read
   security-events: write
 
 # A workflow run is made up of one or more jobs that can run sequentially or in parallel
@@ -30,10 +31,36 @@ jobs:
       - name: Git Checkout
         uses: actions/checkout@v4.1.7
 
+      - name: Get changed files
+        id: changed-files
+        uses: tj-actions/changed-files@v44.5.7
+        with:
+          files_ignore: |
+            .github/**            
+            .dockerignore
+            .env
+            .env.example
+            .gitattributes
+            .gitignore
+            config.json
+            config.json.example
+            **.md
+            LICENSE
+
+      - name: List all changed files
+        env:
+          ALL_CHANGED_FILES: ${{ steps.changed-files.outputs.all_changed_files }}
+        run: |
+          for file in ${ALL_CHANGED_FILES}; do
+            echo "$file was changed"
+          done
+
       - name: Set up Docker Buildx
+        if: steps.changed-files.outputs.any_changed == 'true'
         uses: docker/setup-buildx-action@v3
 
       - name: Build Docker image
+        if: steps.changed-files.outputs.any_changed == 'true'
         uses: docker/build-push-action@v6.6.1
         with:
           context: .
@@ -43,6 +70,7 @@ jobs:
           tags: georgedavisibexlabs/publish-sarif-to-jira:build
 
       - name: Run Trivy in GitHub SBOM mode and submit results to Dependency Graph
+        if: steps.changed-files.outputs.any_changed == 'true'
         uses: aquasecurity/trivy-action@0.24.0
         with:
           scan-type: 'fs'
@@ -52,16 +80,19 @@ jobs:
           github-pat: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Upload trivy SBOM as a Github artifact
+        if: steps.changed-files.outputs.any_changed == 'true'
         uses: actions/upload-artifact@v4.3.6
         with:
           name: trivy-sbom-report
           path: trivy-dependency-results.sbom.json
           retention-days: 30
 
       - name: List Docker Containers
+        if: steps.changed-files.outputs.any_changed == 'true'
         run: 'docker ps -a'
 
       - name: List Docker Images
+        if: steps.changed-files.outputs.any_changed == 'true'
         run: 'docker images'
 
       # - name: Run Trivy Image scanner

diff --git a/DOCKER.md b/DOCKER.md
@@ -56,7 +56,7 @@ Project Status: **In Active Development**
 
 ```
     - name: Create JIRA tickets from SARIF
-      uses: GeorgeDavis-Ibexlabs/publish-sarif-to-jira@v0.0.10
+      uses: GeorgeDavis-Ibexlabs/publish-sarif-to-jira@v0.0.11
 ```
 Refer to [Create JIRA tickets from SARIF using GitHub Actions](https://github.com/marketplace/actions/create-jira-tickets-from-sarif)
 

diff --git a/README.md b/README.md
@@ -55,7 +55,7 @@ Project Status: **In Active Development**
 
 ```
     - name: Create JIRA tickets from SARIF
-      uses: GeorgeDavis-Ibexlabs/publish-sarif-to-jira@v0.0.10
+      uses: GeorgeDavis-Ibexlabs/publish-sarif-to-jira@v0.0.11
 ```
 Refer to [Create JIRA tickets from SARIF using GitHub Actions](https://github.com/marketplace/actions/create-jira-tickets-from-sarif)